Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support newer format versions for terraform JSON plan #1691

Open
wants to merge 15 commits into
base: master
Choose a base branch
from
Open

Support newer format versions for terraform JSON plan #1691

wants to merge 15 commits into from

Conversation

zied-elouaer
Copy link

The format versions currently supported by Terrascan are very outdated (since Terraform 1.1.x). This PR adds support for the newer versions.
This was already tested and confirm not to break Terrascan functionality.

@zied-elouaer zied-elouaer requested a review from a team as a code owner August 13, 2024 15:52
sixstone-qq and others added 13 commits August 22, 2024 15:44
@sixstone-qq
Merge remote-tracking branch 'upstream/master'
5ba6596
@sixstone-qq
feat: Add resource.ID to the report violation
407e87d
@sixstone-qq
feat: Add support to dump resource_id
b24d087 
As decoratedName in SARIF report
@sixstone-qq
test: Support happy path for executor of an engine
12af1a3
@sixstone-qq
Merge pull request #2 from terramate-io/sixstone-qq/001/sc-13570-reso…
e821718 
…urce-address

Add support to report resource id
@sixstone-qq
Merge remote-tracking branch 'upstream/master'
4e0794f
@sixstone-qq
feat: Wait longer to process JQ query
e7c9b55 
Some large files may take longer than 100ms.

It also fixes a wrong log message, only in this file, there are
more in other parts of the project.
@sixstone-qq
feat: Wait longer to process JQ query (#3)
0b185f0 
Some large files may take longer than 100ms.

It also fixes a wrong log message, only in this file, there are more in
other parts of the project.

Before that:
```
❯ terrascan scan -i tfplan -f large.tfplan.json
2024-08-30T10:30:07.848+0200    warn    utils/jqhelper.go:56    error in processing jq query; error: '%v'context deadline exceeded
2024-08-30T10:30:07.848+0200    error   cli/run.go:141  scan run failed{error 26 0  failed to decode processed jq output. error: 'unexpected end of JSON input'}
```
*Note the wrong log message*

Increase the timeout to 1s it works.
@snakster
Add resource_type to rule properties
ac7ecb7
@snakster
Add resource_type to rule properties (#4)
e553f7a 
This PR adds the `resource_type` field from the rule metadata to the
output of passed rules, and further to the rule properties in the Sarif
report.

This field is useful to know which resource rules were applied to, in
particular for rules without violations where we have no way of knowing
this otherwise.
@snakster
Sync latest upstream (#5)
390c50e
@snakster
chore: Update go-sarif to latest version
c924a62
@snakster
chore: Update go-sarif to latest version (#6)
458f2b4
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Oct 11, 2024

Quality Gate Passed Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bkizer-tenable bkizer-tenable Awaiting requested review from bkizer-tenable bkizer-tenable is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@zied-elouaer @sixstone-qq @snakster